Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/af/98e113-e002-4d93-9a49-adeade2865c1/1/l_y-HIar9SH7fBzaBaiQ405C-_4.roa
File: l_y-HIar9SH7fBzaBaiQ405C-_4.roa (raw, json)
Hash identifier: 4PIoITn9oQItAWFKAh1A1LBPS6PlxYz7yD3dOR0+SG0=
Subject key identifier: 97:FC:BE:1C:86:AB:F5:21:FB:7C:1C:DA:05:A8:90:E3:4E:42:FB:FE
Certificate issuer: /CN=d5637692ff5c45486d1053b149dc1420026cd733
Certificate serial: 018689F1909AA7C9325CF5949EF13D3AA404
Authority key identifier: D5:63:76:92:FF:5C:45:48:6D:10:53:B1:49:DC:14:20:02:6C:D7:33
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1WN2kv9cRUhtEFOxSdwUIAJs1zM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/af/98e113-e002-4d93-9a49-adeade2865c1/1/l_y-HIar9SH7fBzaBaiQ405C-_4.roa
Signing time: Sat 25 Feb 2023 18:59:15 +0000
ROA not before: Sat 25 Feb 2023 18:59:15 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 45.149.94.0/23 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:89:f1:90:9a:a7:c9:32:5c:f5:94:9e:f1:3d:3a:a4:04
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d5637692ff5c45486d1053b149dc1420026cd733
Validity
Not Before: Feb 25 18:59:15 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=97fcbe1c86abf521fb7c1cda05a890e34e42fbfe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:b8:28:0d:d3:0d:78:e4:4c:63:f9:6e:e4:07:
ca:2e:48:88:60:15:35:86:f6:5a:89:19:07:ad:b9:
d1:d1:dd:85:ac:75:1e:ce:ca:13:b9:f2:d1:dd:39:
16:c1:9b:87:9d:5c:5a:b0:1c:85:dc:09:ff:50:50:
e8:9a:8e:ea:66:2c:78:04:1a:1b:0b:33:41:d6:2f:
a9:b5:37:75:6f:07:7e:da:ef:4f:f3:6b:58:79:5f:
50:25:3a:46:78:42:57:e2:ba:03:dc:6b:ee:0c:2a:
63:d7:56:f2:d8:28:da:ab:01:98:7a:dd:75:8e:8d:
8a:9e:db:63:50:b4:21:63:b6:de:12:08:6a:d1:f9:
29:b7:1a:44:cd:e7:bc:e2:48:81:56:83:6f:47:b1:
a7:88:21:31:2a:f0:c6:01:17:af:44:d3:16:16:4f:
e3:66:5c:55:ea:14:0f:7c:25:1e:82:73:17:b5:68:
b8:b0:a9:c1:dc:c7:8c:77:97:f2:1a:73:68:04:d8:
a3:60:c6:46:a5:32:8b:51:00:ca:64:9f:12:4f:01:
a4:f9:97:26:52:7d:78:7a:e3:78:2a:8b:7c:2a:1e:
83:4a:b6:2b:a8:40:75:8d:dd:48:8b:e4:61:ac:f2:
5a:d4:6e:de:48:11:a9:dd:ef:70:c0:05:14:06:91:
92:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:FC:BE:1C:86:AB:F5:21:FB:7C:1C:DA:05:A8:90:E3:4E:42:FB:FE
X509v3 Authority Key Identifier:
keyid:D5:63:76:92:FF:5C:45:48:6D:10:53:B1:49:DC:14:20:02:6C:D7:33
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1WN2kv9cRUhtEFOxSdwUIAJs1zM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/af/98e113-e002-4d93-9a49-adeade2865c1/1/l_y-HIar9SH7fBzaBaiQ405C-_4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/af/98e113-e002-4d93-9a49-adeade2865c1/1/1WN2kv9cRUhtEFOxSdwUIAJs1zM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.149.94.0/23
Signature Algorithm: sha256WithRSAEncryption
04:06:64:09:06:a4:5a:9f:01:26:b5:ca:64:76:8c:60:2b:1e:
fe:86:bb:6c:06:48:3b:53:35:2e:9e:71:c4:93:56:42:13:02:
1e:32:cd:f5:9e:39:86:5e:dd:de:d6:5c:45:af:14:26:9b:65:
cb:37:df:07:15:b0:9f:1f:55:c4:5f:3a:93:dd:dd:9f:c8:a3:
5a:0e:90:9e:eb:bc:b2:e0:22:53:11:29:f3:47:bd:f9:55:ca:
d9:fa:06:98:7a:6d:d5:94:40:11:2d:6d:ce:42:0a:ee:99:ed:
84:52:7d:79:64:21:7b:d6:80:52:0e:be:34:00:82:50:79:77:
76:c2:e0:71:ea:ad:5f:53:f0:2f:2b:f8:5f:33:c5:2c:3f:a4:
15:6e:bb:cb:be:aa:e1:de:8f:65:94:46:82:57:a6:f8:9b:1f:
54:5b:21:91:ea:b5:90:e0:d8:41:e9:69:01:c2:0f:7a:d3:70:
dd:72:e4:77:05:7a:19:71:f6:e3:87:eb:aa:ba:13:50:cc:60:
ab:e6:5a:ed:59:c0:50:37:b4:b4:b2:23:b6:ca:1a:f4:9b:91:
ca:ac:17:f1:d4:2b:c8:fc:a0:f6:4f:97:c2:c1:f1:c7:d4:a7:
90:68:2f:90:aa:13:ed:db:1b:b7:da:cf:1b:62:80:6e:80:5d:
0c:d3:67:58
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:09 2023 by rpki-client on console-ams.rpki-client.org